org.lz4:lz4-pure-java
v1.8.0Maven· JavaThe verdict
Has 2 high-severity advisories. Verify a patched version exists before using. Check the OSV link for the fixed-in version.
Check the OSV link for the fixed-in version.
Live from the Maven registry · derived rules, not AI
How it scores
MaintenanceAbandoned
PopularityUnknown
Security2 advisories
LicensePermissive
DepsZero deps
Maintenance
Last published 4 years ago.
Popularity
Download count unavailable.
Security
2 known advisories (worst: high severity).
License
Apache-2.0
Dependencies
No runtime dependencies
Security advisories
Live from OSV.dev · cached 24h- HIGHyawkat LZ4 Java has a possible information leak in Java safe decompressorGHSA-cmp6-m4wj-q63q Published 2025-12-05
- HIGHLZ4 Java Compression has Out-of-bounds memory operations which can cause DoSGHSA-vqf4-7m7x-wgfc Published 2025-11-28
Recent releases
- 1.8.04 years ago
- 1.7.06 years ago